$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/B8F7484AB09C11F0B4CDAF50C4F9AE02.roa File: B8F7484AB09C11F0B4CDAF50C4F9AE02.roa (raw, json) Hash identifier: 322D4QlhjM4lJKRAv0w/g6yKjB0Sn7N+1mStUaRUpk8= Subject key identifier: 5C:4F:28:74:43:4E:1E:C8:1D:F8:F0:B6:8F:D0:E5:E6:D3:07:56:B4 Certificate issuer: /CN=A9171D3F/serialNumber=EFD88F8A289B14C79443128BBBB791B52DA511AD Certificate serial: 01FA Authority key identifier: EF:D8:8F:8A:28:9B:14:C7:94:43:12:8B:BB:B7:91:B5:2D:A5:11:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/B8F7484AB09C11F0B4CDAF50C4F9AE02.roa Signing time: Fri 24 Oct 2025 05:46:02 +0000 ROA not before: Fri 24 Oct 2025 05:46:02 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139904 IP address blocks: 103.39.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.crl rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D3F, serialNumber=EFD88F8A289B14C79443128BBBB791B52DA511AD Validity Not Before: Oct 24 05:46:02 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68fb1299-566e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c5:0e:37:c5:5a:4e:e9:fb:09:1f:b4:04:48: 90:9b:0c:0e:74:5a:7c:9d:82:3c:1d:55:52:c3:0d: 7a:c4:6d:c9:ac:ea:2d:6f:95:e2:89:b4:7c:be:ad: b2:b7:4c:9e:3f:57:5a:6e:16:8d:a7:57:7d:09:88: ac:de:c2:09:2c:76:1f:72:e8:ae:3e:f9:4e:2f:aa: 52:69:31:7a:a2:49:a6:7b:34:ee:8c:aa:dd:e7:f4: ea:6d:7f:ec:72:d1:a3:7f:d0:0d:2c:94:65:e0:2a: c5:67:4f:77:98:5c:d8:e4:a3:cb:b1:c4:dc:5f:fe: 40:87:9c:62:63:70:67:b2:75:e3:0e:2c:6b:a3:0f: 4b:59:e0:9f:70:9f:0f:f3:61:8a:8d:3b:f0:cf:66: c6:94:e5:0b:8a:54:77:d2:4c:94:e0:17:a5:3e:0e: 5b:f0:7b:86:49:be:60:62:4d:d4:13:ce:99:df:fa: 8e:2c:e8:b0:c5:b9:37:50:f9:66:ac:20:f0:31:0e: ad:7d:de:8e:f1:15:b5:51:b3:2e:31:3b:d7:27:7a: d6:fc:a5:bd:34:04:3b:8f:6b:60:f3:91:7b:09:b2: c6:ba:c4:36:8f:07:31:b4:4c:02:9f:7c:0b:15:57: a7:c8:fe:12:4d:32:44:c1:c0:14:ba:79:c1:61:76: 38:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4F:28:74:43:4E:1E:C8:1D:F8:F0:B6:8F:D0:E5:E6:D3:07:56:B4 X509v3 Authority Key Identifier: keyid:EF:D8:8F:8A:28:9B:14:C7:94:43:12:8B:BB:B7:91:B5:2D:A5:11:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/B8F7484AB09C11F0B4CDAF50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.197.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:98:fe:f5:26:a3:66:43:e2:54:97:48:8e:91:45:18:ed:48: 5e:4c:58:60:4b:ea:e9:02:85:dd:29:a1:cc:6d:a8:fa:d4:2c: ef:75:b7:fa:3c:3d:e1:0e:35:d8:11:b6:38:e0:d3:ba:40:3d: d3:69:b3:ce:e8:e4:7b:98:28:ab:b2:8c:a0:b7:54:99:82:60: b8:5f:21:4b:07:72:ad:e4:29:ec:c5:97:76:67:a9:c3:de:9b: 86:9d:58:f9:b9:c7:de:98:82:5b:9c:53:8f:d1:ce:68:b7:f6: b1:21:e0:b1:5b:17:54:ab:71:d5:e1:02:53:43:94:57:0e:eb: a8:fe:75:98:8f:03:2a:05:45:48:5e:21:08:48:98:23:e0:23: 4a:3f:c3:b6:fe:48:af:02:52:6b:96:ba:d3:30:9d:d1:67:e8: 6d:58:55:0a:a9:2e:9f:a5:96:10:9d:9d:c0:17:78:bb:7b:03: 9d:0c:45:52:11:21:ac:28:6f:e1:3e:2a:fb:1b:bf:b2:14:89: ac:32:28:06:f9:31:70:da:57:b4:d5:3e:6c:28:0b:1b:bf:77: f9:c2:dd:f6:fa:c4:85:88:27:0d:f9:3d:9f:25:93:f2:3a:99: 70:2e:93:fd:20:a5:a8:1c:13:b7:da:50:3f:25:49:96:06:bf: 04:5b:38:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEM0YxMTAvBgNVBAUTKEVGRDg4RjhBMjg5QjE0Qzc5NDQzMTI4QkJCQjc5MUI1 MkRBNTExQUQwHhcNMjUxMDI0MDU0NjAyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZiMTI5OS01NjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysUON8VaTun7CR+0BEiQmwwOdFp8nYI8HVVSww16xG3JrOotb5XiibR8vq2y t0yeP1dabhaNp1d9CYis3sIJLHYfcuiuPvlOL6pSaTF6okmmezTujKrd5/TqbX/s ctGjf9ANLJRl4CrFZ093mFzY5KPLscTcX/5Ah5xiY3BnsnXjDixrow9LWeCfcJ8P 82GKjTvwz2bGlOULilR30kyU4BelPg5b8HuGSb5gYk3UE86Z3/qOLOiwxbk3UPlm rCDwMQ6tfd6O8RW1UbMuMTvXJ3rW/KW9NAQ7j2tg85F7CbLGusQ2jwcxtEwCn3wL FVenyP4STTJEwcAUunnBYXY41QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFxPKHRD Th7IHfjwto/Q5ebTB1a0MB8GA1UdIwQYMBaAFO/Yj4oomxTHlEMSi7u3kbUtpRGt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzRi85QjlDOEU2QUIx QjUxMUVEOTlFMzI2NjlDNEY5QUUwMi83OWlQaWlpYkZNZVVReEtMdTdlUnRTMmxF YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc5aVBpaWliRk1lVVF4S0x1N2VSdFMybEVhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFEM0YvOUI5QzhFNkFCMUI1MTFFRDk5RTMyNjY5QzRGOUFFMDIvQjhGNzQ4NEFC MDlDMTFGMEI0Q0RBRjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnJ8UwDQYJKoZIhvcNAQELBQADggEBAJ2Y/vUmo2ZD4lSX SI6RRRjtSF5MWGBL6ukChd0pocxtqPrULO91t/o8PeEONdgRtjjg07pAPdNps87o 5HuYKKuyjKC3VJmCYLhfIUsHcq3kKezFl3ZnqcPem4adWPm5x96YglucU4/Rzmi3 9rEh4LFbF1SrcdXhAlNDlFcO66j+dZiPAyoFRUheIQhImCPgI0o/w7b+SK8CUmuW utMwndFn6G1YVQqpLp+llhCdncAXeLt7A50MRVIRIawob+E+Kvsbv7IUiawyKAb5 MXDaV7TVPmwoCxu/d/nC3fb6xIWIJw35PZ8lk/I6mXAuk/0gpagcE7faUD8lSZYG vwRbOC4= -----END CERTIFICATE-----Generated at Wed Nov 5 18:01:21 2025 by rpki-client